File tree Expand file tree Collapse file tree 1 file changed +2
-2
lines changed Expand file tree Collapse file tree 1 file changed +2
-2
lines changed Original file line number Diff line number Diff line change @@ -6,7 +6,7 @@ resource "aws_cloudwatch_log_metric_filter" "secret_access" {
66 count = . enable_secret_access_notification ? 1 : 0
77 name = " ${ var . name_prefix } secret-access"
88 log_group_name = . cloudtrail_log_group
9- pattern = " { $.eventName = \" GetSecretValue\" && $.requestParameters.secretId = \" ${ aws_secretsmanager_secret . secret . arn } \" }"
9+ pattern = " { $.eventName = \" GetSecretValue\" && $.requestParameters.secretId = \" ${ aws_secretsmanager_secret . secret [ 0 ] . arn } \" }"
1010
1111 metric_transformation {
1212 default_value = 0
@@ -20,7 +20,7 @@ resource "aws_cloudwatch_metric_alarm" "unauthorized_cloudtrail_calls" {
2020 count = . enable_secret_access_notification ? 1 : 0
2121 alarm_actions = var . secret_access_notification_arn ]
2222 alarm_name = " ${ local . name_prefix } secret-access"
23- alarm_description = " Monitor usage of secret: ${ aws_secretsmanager_secret . secret . id } "
23+ alarm_description = " Monitor usage of secret: ${ aws_secretsmanager_secret . secret [ 0 ] . id } "
2424 comparison_operator = " GreaterThanOrEqualToThreshold"
2525 evaluation_periods = 1
2626 metric_name = " ${ local . name_prefix } SecretAccessed"
You can’t perform that action at this time.
0 commit comments